Trail of Bits
Computer Software
SeniorSecurityEngineer,AgenticAI
Neural analysis suggests this role is
optimal for Senior candidates.
“Senior Security Engineer, Agentic AI at Trail of Bits. Skills: Agentic AI Security, Prompt Injection, Application Security, Threat Modeling. Discover novel vulnerabilities. Exploit novel vulnerabilities”
Industry & Context.
Adversarial mindset; Troubleshooting
What They're Looking For.
Must Have
5+ years Python, 5+ years Go, 5+ years Rust, 5+ years Kotlin, 5+ years Swift, 5+ years Objective-C, 5+ years JavaScript/TypeScript, 5+ years Ruby, 5+ years C, 5+ years C++, Demonstrated ability to identify and mitigate AI-specific vulnerabilities, Hands-on experience with prompt injection attacks and defenses, Deep understanding of AI/ML architectures, Deep understanding of AI/ML frameworks, Deep understanding of MLOps practices, Robust security engineering expertise, Track record of conducting technical security assessments, Experience implementing effective security measures, Practical experience designing and executing prompt injection workflows, Familiarity with emerging prompt injection taxonomies, Familiarity with emerging prompt injection mitigation approaches, Creative and adversarial mindset, Ability to effectively communicate complex security concepts, Ability to deliver clear, actionable recommendations
Nice to Have
Experience with PyTorch, Experience with JAX, Experience with LangChain, Experience with RAG systems, Experience with Kubernetes, Experience with container orchestration platforms
What You'll Do.
Discover novel vulnerabilities
Exploit novel vulnerabilities
Develop prompt injection attacks
Test agent orchestration weaknesses
Identify LLM tool use failure modes
Identify training data pipeline failure modes
Identify guardrail mechanism failure modes
Identify and analyze novel attack vectors
Focus on real-world failure modes
Focus on system integration issues
Focus on unauthorized access vectors
Apply application security expertise
Apply adversarial thinking
Develop threat models
Contribute to risk frameworks
Deliver specialized training
Conduct assessments of agentic AI pipelines
Conduct assessments of agentic AI tools
Conduct assessments of agentic AI frameworks
Examine vulnerabilities in model architectures
Examine vulnerabilities in guardrails
Examine vulnerabilities in deployment infrastructure
Develop mitigation strategies
Develop prompt injection techniques
Target agentic workflows
Develop indirect injection techniques
Develop multi-turn manipulation techniques
Develop cross-agent exploitation techniques
Produce actionable attack libraries
Produce defensive countermeasures
Conduct security assessments of code bases
Identify vulnerabilities
Conduct threat modeling
Conduct risk assessments
Develop mitigation strategies
Review system architecture
Assure products through system analysis
Assure products through system modeling
Develop AI regulatory frameworks
Establish assurance methods
Establish auditing processes
Ensure alignment with industry standards
Ensure alignment with safety requirements
How You'll Work.
Team & Collaboration
Leading industry teams
Communication Scope
Communicate complex concepts; Deliver actionable recommendations
Full Job Description
### Who We Are Founded in 2012 by 3 expert hackers with no investment capital, Trail of Bits is the premier place for security experts to boldly advance security and address technology’s newest and most challenging risks. It has helped secure some of the world's most targeted organizations and devices. Our combination of novel research with practical solutions reduces the security risks that our clients face from emerging technologies. Our work helps drive the security industry and the public understanding of the technology underlying our world. Cybersecurity preparedness is a moving target. Companies like ours are the tip of the spear in the fight against attackers. Our research-based and custom-engineering approach ensures that our client’s capabilities are at the forefront of what’s available. For companies and technologies that live and die by their security, a proactive, tailored approach is required to keep one step ahead of attackers. Democratizing security information is essential. As part of our business, we provide ongoing informational support through blogs, whitepapers, newsletters, meetups, and open-source tools. The more the community understands security, the more they’ll understand why a company like ours is so unique and valuable. ### Role Trail of Bits seeks a Senior Security Engineer specializing in Agentic AI Security for our Software Assurance team. You will discover and exploit novel vulnerabilities in agentic AI systems — finding the breaks before your clients do. You'll develop sophisticated prompt injection attacks, test agent orchestration weaknesses, and identify real-world failure modes in LLM tool use, training data pipelines, and guardrail mechanisms. You will identify and analyze novel attack vectors specific to AI and agentic environments, focusing on real-world failure modes, system integration issues, and unauthorized access vectors. This role allows you to apply application security expertise and adversarial thinking to the latest
Applying for this Senior Security Engineer, Agentic AI role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
ANONYMOUS · UNFILTERED
What do employees actually say about Trail of Bits?
Real rants from real employees. Read before you apply.